Then why don’t you report the issues to the timthumb developers so they can fix it in the next version? And don’t forget that still millions of websites are using timthumb, if what you say is true, then most of them will/should already be hacked. But they’re not.

Coming here and crying instead of fixing the issue and reporting it to the developer is not a sign of professionalism.

And it’s needed due to multiple reasons including WP not being able to resize images located in a folder other than the wp one, wp can’t resize external images.

Yep the issue has been solved by suppressing ALL themes using timthumb (more than 50, up to date, free wp.org themes), and restoring all the server account, purged of all themes before restoring. And the server has bee stable immediatly.

Specialists are now analysing the logs to see what happened exactly. But i wont share anything with them. There is absolutely no need to duplicate a core, secure function of WP by an external application. No need to use an external folder. Put images where they must be, as in 95% of themes, as Elegant thees has done.

And by the way, many sites ARE hacked. We have that all days on forums. Because of timthumb ? Possibly.
What is sure is that I will never user anymore theme with timthumb and will write a review about that.

You may be right, but still I think the best way to handle this kind of situations is to help the developers improve it and report any possible logs and vulnerabilities to them. timthumb has its purpose, “put images where they must be” isn’t a valid reason for not using it, many users have separate folders with their images or many multimedia themes use vimeo / youtube for videos, we need thumbnails for them, WP isn’t capable of getting those thumbs manually and the easiest way is to use a timthumb-like solution.

I’d suggest checking the timthumb configuration and permissions and make sure you were using the latest version because from my research I don’t see any major websites hacked in the past weeks because of any new vulnerability discovered.